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SPECIFICATION 

TITLE OF THE INVENTION 

PROGRAM ADDITION METHOD AND PROGRAM 
ADDITION SYSTEM 
CLAIMS 

1. A program addition method for use in a program addition 
system including a server which creates a program-addition file for 
being stored in a program-addition recording medium, and an 
information processing apparatus which adds a program to a 
program-initiation recording medium by using the program-addition 
recording medium, the program addition method comprising the 
steps of: 

acquiring identification information of the program-initiation 
recording medium to create a program-addition file in response to 
the identification information, so that starting of the program on the 
information processing apparatus is allowed by the program-addition 
file with the program stored in the program-initiation recording 
medium; 

detecting the program-addition recording medium in which the 
program-addition file is recorded, to perform an authentication 
check of the program-addition file read from the program-addition 
recording medium; and 

adding the program to the program-initiation recording 
medium according to a result of the authentication check. 

2. A program addition method for use in a program addition 
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system including a server which creates a program-addition file for 
being stored in a program-addition recording medium, and an image 
processing device which adds a program to a program-initiation 
recording medium by using the program-addition recording medium, 
5 the program addition method comprising the steps of: 

acquiring identification information of the program-initiation 
recording medium to create a program-addition file in response to 
the identification information, so that starting of the program on the 
image processing device is allowed by the program-addition file 

10 with the program stored in the program-initiation recording medium; 

detecting the program-addition recording medium in which the 
program-addition file is recorded, to perform an authentication 
check of the program-addition file read from the program-addition 
recording medium; and 

15 adding the program to the program-initiation recording 

medium according to a result of the authentication check. 

3. The program addition method according to claim 1 or 2, 
further comprising the step of transmitting the program-addition file 
from the server to the information processing apparatus or the image 

20 forming device via a network. 

4. The program addition method according to claim 3, further 
comprising the step of storing the program-addition file in the 
program-addition recording medium which is used for the addition 
of the program to the program-initiation recording medium. 

25 5. The program addition method according to claim 1 or 2, 



wherein the program-addition file comprises a program file, an 
electronic signature of the program file, a configuration file, and an 
electronic signature of the configuration file, so that starting of the 
program on the information processing apparatus is allowed by the 
program-addition file with the program stored in the program- 
initiation recording medium. 

6. The program addition method according to claim 1 or 2, 
wherein the acquiring step comprises: 

receiving the program file, the electronic signature of the 
program file, and the configuration file; and 

creating a second electronic signature of the configuration file 
based on the identification information of the program-initiation 
recording medium and the acquired configuration file. 

7. The program addition method according to claim 1 or 2, 
wherein, in the acquiring step, the identification information is 
acquired from a predetermined information provider device. 

8. The program addition method according to claim 1 or 2, 
wherein the program file, the electronic signature of the program file, 
and the configuration file are acquired from a predetermined 
information provider device. 

9. The program addition method according to claim 1, wherein 
a file transmitting unit of the server transmits the program-addition 
file to a computer terminal in which the program-addition file is 
stored in a program-addition recording medium. 

10. The program addition method according to claim 2, 
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wherein, when there are two or more program-initiation recording 
mediums, the program addition unit displays a screen to select one 
of the program-initiation recording mediums is displayed, and adds 
the program to the selected program-initiation recording medium. 
5 11. The program addition method according to any of claims 1 

to 10, wherein an information transmitting unit of a computer 
terminal transmits, to the server, information required to acquire 
identification information of the program-initiation recording 
medium. 

10 12. A program addition system including a server which 

creates a program-addition file for being stored in a program- 
addition recording medium, and an information processing apparatus 
which adds a program to a program-initiation recording medium by 
using the program-addition recording medium, 

15 wherein the server is configured to acquire identification 

information of the program-initiation recording medium, and to 
create a program-addition file in response to the identification 
information, so that starting of the program on the information 
processing apparatus is allowed by the program-addition file with 

20 the program stored in the program-initiation recording medium, 

wherein the information processing apparatus is configured to 
detect the program-addition recording medium in which the program- 
addition file is recorded, to perform an authentication check of the 
program-addition file read from the program-addition recording 

25 medium, and to add the program to the program-initiation recording 
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medium according to a result of the authentication check. 

13. A program addition system including a server which 
creates a program-addition file for being stored in a program- 
addition recording medium, and an image processing device which 

5 adds a program to a program-initiation recording medium by using 
the program-addition recording medium, 

wherein the server is configured to acquire identification 
information of the program-initiation recording medium, and to 
create a program-addition file in response to the identification 
10 information, so that starting of the program on the image processing 
device is allowed by the program-addition file with the program 
stored in the program-initiation recording medium, 

wherein the image processing device is configured to detect 
the program-addition recording medium in which the program- 
15 addition file is recorded, to perform an authentication check of the 
program-addition file read from the program-addition recording 
medium, and to add the program to the program-initiation recording 
medium according to a result of the authentication check. 

14. The program addition system according to claim 12 or 13, 
20 wherein the program-addition file is transmitted from the server to 

the information processing apparatus or the image forming device 
via a network. 

15. The program addition system according to claim 12 or 13, 
wherein the program-addition file is stored in the program-addition 

25 recording medium which is used for the addition of the program to 
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the program-initiation recording medium. 

16. The program addition system according to claim 12 or 13, 
wherein the program-addition file comprises a program file, an 
electronic signature of the program file, a configuration file, and an 

5 electronic signature of the configuration file, so that starting of the 
program on the information processing apparatus is allowed by the 
program-addition file with the program stored in the program- 
initiation recording medium. 

17. The program addition system according to claim 12 or 13, 
10 wherein the program file, the electronic signature of the program file, 

and the configuration file are received, and a second electronic 
signature of the configuration file is created based on the 
identification information of the program-initiation recording 
medium and the acquired configuration file. 
15 18. The program addition system according to claim 12, 

wherein the identification information is acquired from a 
predetermined information provider device. 

19. The program addition system according to claim 12, 
wherein the program file, the electronic signature of the program file, 

20 and the configuration file are acquired from a predetermined 
information provider device. 

20. The program addition system according to claim 13, 
wherein a file transmitting unit of the server transmits the program- 
addition file to a computer terminal in which the program-addition 

25 file is stored in a program-addition recording medium. 
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21. The program addition system according to claim 13, 
wherein, when there are two or more program-initiation recording 
mediums, the program addition unit displays a screen to select one 
of the program-initiation recording mediums is displayed, and adds 

5 the program to the selected program-initiation recording medium. 

22. The program addition system according to any of claims 
12 to 21, wherein an information transmitting unit of a computer 
terminal transmits, to the server, information required to acquire 
identification information of the program-initiation recording 

10 medium. 

FIELD OF THE INVENTION 

The present invention generally relates to a program addition 
method and a program addition system, and more specifically to a 
program addition method and a program addition system which are 

15 configured to add a program to a program initiating recording 
medium using a program addition recording medium. 
DESCRIPTION OF RELATED ART 

An information processing apparatus, such as a personal 
computer, carries out various kinds of information processing by 

20 performing one or more programs corresponding to respective 
information processing procedures. 

Moreover, an image forming apparatus (for example, a multi- 
function peripheral system), which is an application example of the 
information processing apparatus, is provided with the display unit, 

25 the printing unit, the image pickup unit, etc., which are 
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accommodated in a single housing, in addition to the four kinds of 
programs corresponding to the printer, the copier, the facsimile, and 
the scanner, respectively. By selecting one of the programs, the 
multi-function peripheral system is operated as the selected one of 
5 the printer, the copier, the facsimile, and the scanner. 

Japanese Laid-Open Patent Application No. 2002-084383 
discloses an example of the multi-function peripheral system 
mentioned above. 

Upon power-up of the multi-function peripheral system or the 

10 like, the BIOS (basic input/output system) and the boot loader are 

started. The boot loader expands the operating system (OS) and the 
root file system on the RAM (random access memory), and initiates 
the OS. The OS mounts the root file system. The "mounting" herein 
means that a file system, a peripheral device, etc. are started so that 

15 the file system or peripheral device can be accessed by another 
system or device. 

After the startup of the OS, the bootstrap which starts an 
application program (which is called the application) is started. The 
bootstrap is a process which is first started by the information 

20 processing apparatus or the multi-function peripheral system. 

The bootstrap mounts the file system according to a 
predetermined configuration file. The bootstrap starts the program, 
which is required for operation of the information processing 
apparatus or the multi-function peripheral system and recorded in a 

25 program-initiation recording medium, such as a hard disk drive 
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(HDD) or a SD (secure digital) card, according to the predetermined 
configuration file. 

In recent years, there is an increasing demand for a program 
addition system that can easily add a new program for use in the 
5 information processing apparatus or the multi-function peripheral 

system to the program-initiation recording medium mentioned above. 

[Patent Document 1] Japanese Laid-Open Patent Application 
No. 2002-084383 

DISCLOSURE OF THE INVENTION 

10 THE OBJECTIVE TO BE SOLVED BY THE INVENTION 

The addition of a new program to the above-mentioned 
program-initiation recording medium may be carried out through the 
network, such as the Internet or a LAN. Moreover, the addition of a 
new program to the program-initiation recording medium may be 

15 carried out by using an SD card which is a detachable recording 
medium the insertion and removal of which is possible. 

The user can make use of the program which is added to the 
program-initiation recording medium, in any information processing 
apparatus or multi-function peripheral system. Hence, there is a 

20 possibility that the program may be illegally added to a program- 
initiation recording medium which is provided in the information 
processing apparatus or the multi-function peripheral system which 
is not authorized to add the program thereto. 

Moreover, when a program is added to a program-initiation 

25 recording medium using a detachable program-addition recording 
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medium, such as an SD card, the insertion and removal of which is 
possible, the program recorded in the program-addition recording 
medium can be also used with any information processing apparatus 
or multi-function peripheral system. There is also a possibility that 
the program may be illegally added to a program-initiation recording 
medium which is provided in the information processing apparatus 
or the multi-function peripheral system which is not authorized to 
add the program thereto. 

Therefore, when adding the program to the program-initiation 
recording medium of the information processing apparatus or the 
multi-function peripheral system, the provision of a mechanism for 
preventing the program added to the program-initiation recording 
medium from being illegally used is demanded, in order to establish 
the security of the program. 

Accordingly, an object of the present invention is to provide 
an improved program addition system and method in which the 
above-described problems are eliminated. 

Another object of the present invention is to provide a 
program addition system and method which creates a program- 
addition file on a recording medium in response to identification 
information of a program-initiation recording medium, in order to 
prevent the illegal use of a program added to the program-initiation 
recording medium and establish the security of the program added 
thereto. 
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MEANS TO ACHIEVE THE OBJECTIVE 

The above-mentioned objects of the present invention are 
achieved by a program addition method for use in program addition 
system including a server which creates a program-addition file for 
5 being stored in a program-addition recording medium, and an 
information processing apparatus which adds a program to a 
program-initiation recording medium by using the program-addition 
recording medium, the program addition method comprising the 
steps of: acquiring identification information of the program- 

10 initiation recording medium to create a program-addition file in 
response to the identification information, so that starting of the 
program on the information processing apparatus is allowed by the 
program-addition file with the program stored in the program- 
initiation recording medium; detecting the program-addition 

15 recording medium in which the program-addition file is recorded, to 
perform an authentication check of the program-addition file read 
from the program-addition recording medium; and adding the 
program to the program-initiation recording medium according to a 
result of the authentication check. 

20 The above-mentioned objects of the present invention are 

achieved by a program addition method for use in program addition 
system including a server which creates a program-addition file for 
being stored in a program-addition recording medium, and an image 
processing device which adds a program to a program-initiation 

25 recording medium by using the program-addition recording medium, 
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the program addition method comprising the steps of: acquiring 
identification information of the program-initiation recording 
medium to create a program-addition file in response to the 
identification information, so that starting of the program on the 
5 image processing device is allowed by the program-addition file 

with the program stored in the program-initiation recording medium; 
detecting the program-addition recording medium in which the 
program-addition file is recorded, to perform an authentication 
check of the program-addition file read from the program-addition 

10 recording medium; and adding the program to the program-initiation 
recording medium according to a result of the authentication check. 

The above-mentioned objects of the present invention are 
achieved by a program addition system including a server which 
creates a program-addition file for being stored in a program- 

15 addition recording medium, and an information processing apparatus 
which adds a program to a program-initiation recording medium by 
using the program-addition recording medium, wherein the server is 
configured to acquire identification information of the program- 
initiation recording medium, and to create a program-addition file in 

20 response to the identification information, so that starting of the 

program on the information processing apparatus is allowed by the 
program-addition file with the program stored in the program- 
initiation recording medium, wherein the information processing 
apparatus is configured to detect the program-addition recording 

25 medium in which the program-addition file is recorded, to perform 
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an authentication check of the program-addition file read from the 
program-addition recording medium, and to add the program to the 
program-initiation recording medium according to a result of the 
authentication check. 
5 The above-mentioned objects of the present invention are 

achieved by a program addition system including a server which 
creates a program-addition file for being stored in a program- 
addition recording medium, and an image processing device which 
adds a program to a program-initiation recording medium by using 

10 the program-addition recording medium, wherein the server is 

configured to acquire identification information of the program- 
initiation recording medium, and to create a program-addition file in 
response to the identification information, so that starting of the 
program on the image processing device is allowed by the program- 

15 addition file with the program stored in the program-initiation 
recording medium, wherein the image processing device is 
configured to detect the program-addition recording medium in 
which the program-addition file is recorded, to perform an 
authentication check of the program-addition file read from the 

20 program-addition recording medium, and to add the program to the 
program-initiation recording medium according to a result of the 
authentication check. 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS 



A description will now be given of embodiments of the 
25 invention with reference to the accompanying drawings. 
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FIG. 1 is a block diagram of an embodiment of the information 
processing apparatus of the present invention. 

The information processing apparatus 1 is constituted so that 
the software group 2, the boot unit 3, and the hardware resources 4 
5 may be included. 

The boot unit 3 is first activated upon power-up of the 
information processing apparatus 1, and starts the program initiating 
unit which is described later. 

The program initiating unit starts the software group 2 of the 
10 information processing apparatus 1. 

Moreover, the program initiating unit reads the programs of 
the SD card control unit 11, the program addition unit 12, the 
applications 14-1 to 14-n from the auxiliary memory device or the 
SD card, etc., and transmits each program to the memory device so 
15 that it starts the program. Hereinafter, the applications mean the 
application programs which are executed on the OS (operating 
system), and such programs or the application programs may also be 
called the applications. 

The hardware resources 4 comprise the hardware resources, 
20 including the input device, the display device, the auxiliary memory 
device, the memory device, the interface device, and the SD-card 
slot. 

Moreover, the software group 2 includes the programs of the 
SD card control unit 11, the program addition unit 12, and the 
25 applications 14-1 to 14-n, which are started on the OS, such as 
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UNIX (registered trademark). 

The OS carries out parallel execution of the programs (or the 
applications) of the SD card control unit 11, the program addition 
unit 12 and the applications 14-1 to 14-n, as the processes on the OS. 
5 The API (application program interface) 15 is used for the 

pre-defined function to receive the request from the applications 14- 
1 to 14-n. The engine I/F 16 is used for the pre-defined function to 
transmit the request to the hardware resources 4. 

In addition, the SD card control unit 11, the program addition 
10 unit 12, and the program initiating unit will be described later. 

Next, a description will be given of a hardware composition of 
the information processing apparatus 1 of FIG. 1. 

FIG. 2 shows a hardware composition of the information 
processing apparatus 1 of the present invention. 
15 The information processing apparatus 1 of FIG. 2 is 

constituted so that the input device 21, the display device 22, the 
auxiliary memory device 23, the memory device 24, the arithmetic 
processing device 25, the interface device 26, and the SD card slot 
27, which are interconnected by the bus B, may be included. 
20 The input device 21 includes the keyboard, the mouse, etc., 

and it is used by the operator to input various operational 
instructions. The display device 22 displays various operational 
data and windows which are required for the operations. 

The interface device 26 provides the interfaces for connecting 
25 the information processing apparatus 1 to the network or the 
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computer terminal, and includes the modem, the router, or the 
devices according to various interface specifications. 

The insertion and removal of the SD card is possible with 
respect to the SD card slot 27. An interrupt signal, which is 
5 generated in response to the insertion or removal of the SD card, is 
transmitted to the SD card control unit from the SD card slot 27. 

The auxiliary memory device 23 stores various files, data, etc. 
The SD card inserted in the SD card slot 27 and the auxiliary 
memory device 23 store the programs of the SD card control unit 11, 
10 the program addition unit 12, the applications 14-1 to 14-n, which 

are related to the processing of the information processing apparatus 
1, and store various files, data, etc. required for the program 
processing. 

The memory device 24 stores the programs, which are read 
15 from the SD card control unit 11, the program addition unit 12, and 
the applications 14-1 to 14-n, from the SD card inserted in the SD 
card slot 27, and the auxiliary memory device 23, etc. at the time of 
starting of the information processing apparatus 1. 

The arithmetic processing unit 25 performs arithmetic 
20 processing according to the programs of the SD card control unit 11, 
the program addition unit 12 and the applications 14-1 to 14-n, 
which are stored in the memory device 24. 

Next, a description will be given of the composition of the 
multi-function-peripheral system 31 as an application example of the 
25 information processing apparatus 1 of the invention. 
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The following description will be focused on the composition 
of the multi-function peripheral system 31. However, the same is 
applicable to the composition of the information processing 
apparatus 1 of the invention. 
5 The image forming apparatus in the present embodiment is 

provided with the respective functions of image forming modules, 
such as the printer, the copier, the facsimile, and the scanner, which 
are contained in one housing of the apparatus, and the image 
forming apparatus will be called the multi-function peripheral 

10 system (MFP). 

The multi-function peripheral system (MFP) includes the 
display unit, the printing unit, the image reading unit, etc. in a 
single housing, and is provided with the four kinds of software 
(application programs) corresponding to the printer, the copier, the 

15 facsimile, and the scanner, respectively. By selecting one of these 
applications, and the MFP is operated as the selected one of the 
printer, the copier, the facsimile, and the scanner. 

FIG. 3 is a block diagram of an embodiment of the multi- 
function peripheral system of the invention. 

20 As shown in FIG. 3, the multi-function peripheral system 

(MFP) 31 is constituted so that the software group 32, the MFP boot 
unit 33, and the hardware resources 34 are included. 

The MFP boot unit 33 is activated upon power-up of the multi- 
function peripheral system 31, and starts execution of the 

25 application layer 35 and the platform 36 in the software group 32. 
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For example, the MFP boot unit 33 reads the programs of the 
application layer 35 and the platform 36 from the hard disk drive 
(HDD) etc., transfers each read program to the memory storage, and 
starts the execution thereof. 
5 The hardware resources 34 include the monochrome laser 

beam printer (B&W LP) 41, the color laser printer (Color LP) 42, 
and other hardware resources 43, such as the scanner and the 
facsimile. 

The software group 32 includes the application layer 35 and 

10 the platform 36 which are operated on the operating system (OS), 
such as UNIX (registered trademark). 

The application layer 35 includes the programs which perform 
processing specific to the respective user services related to the 
image formation, such as the printer, the copier, the facsimile, and 

15 the scanner. Specifically, the application layer 35 includes the 

printer application 51, the copier application 52, the fax application 
53, the scanner application 54, and the network file application 55. 

The platform 36 includes the control service layer 37, the 
system resource manager (SRM) 69, and the handler layer 38. The 

20 control service layer 37 interprets the processing request from the 
application layer 35, and generates the acquisition request to the 
hardware resources 34. The SRM 69 manages one or more hardware 
resources 34, and arbitrates the acquisition request from the control 
service layer 37. The handler layer 38 manages the hardware 

25 resources 34 according to the acquisition request from SRM 69. 
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The control service layer 37 is constituted to include one or 
more service modules therein. Specifically, the control service layer 
37 includes the network control service (NCS) 61, the delivery 
control service (DCS) 62, the operation panel control service (OCS) 
5 63, the facsimile control service (FCS) 64, the engine control 

service (ECS) 65, the memory control service (MCS) 66, the user 
information control service (UCS) 67, and the system control service 
(SCS) 68. 

In addition, the platform 36 is constituted with the pre-defined 
10 functions so that the application program interface (API) 81 which 
receives a processing request from the application layer 35 is 
included. The operating system (OS) carries out parallel execution 
of the applications of the application layer 35 and the platform 36 as 
processes thereon. 

15 The process of NCS 1228 acts as the agent that distributes the 

data received from the network through the corresponding protocol 
over the applications, and transmits the data from the applications to 
the network through the corresponding protocol. For example, the 
process of NCS 1228 controls data communications of HTTP 

20 (hypertext transfer protocol) between the MFP and the clients 

connected via the network, by using HTTPD (hypertext transfer 
protocol daemon). 

The process of DCS 62 controls delivery of the accumulated 
documents etc. The process of OCS 63 controls operation of the 

25 operation panel. The process of FCS 64 provides the application 
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program interface for performing the facsimile transmission and 
reception using the PSTN or ISDN network from the application 
layer 35, the registration/retrieval of various facsimile data managed 
with the backup memory, the facsimile reading, the facsimile 
5 reception and printing, etc. 

The process of ECS 65 controls the engine units, such as the 
monochrome laser beam printer 41, the color laser printer 42, and 
the other hardware resources 43. The process of MCS 66 performs 
memory control of the memory acquisition and releasing, the use of 

10 HDD, the compression and expansion of image data, etc. The 

process of UCS 67 manages user information. The process of SCS 
68 controls the application management, the operation panel control, 
the system monitor displaying, the LED monitor displaying, the 
hardware-resources management, the interrupted application control, 

15 etc. 

The process of SRM 69 carries out the system control and the 
management of the hardware resources 34 associated with SCS 68. 
For example, the process of SRM 69 arbitrates the acquisition 
requests from the upper layer to use the hardware resources 34, such 

20 as the monochrome laser beam printer 31 and the color laser printer 
32, and controls the execution thereof. 

Specifically, the process of SRM 69 determines whether the 
hardware resources 34 can be used according to the acquisition 
request (or whether they are currently used according to another 

25 acquisition request). If the use of the hardware resources 34 is 
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possible, the process of SRM 69 notifies the upper layer that the 
hardware resources 34 can be used according to the acquisition 
request. 

Moreover, the process of SRM 69 performs scheduling of the 
5 use of the hardware resources 34 according to the acquisition request 
from the upper layer, and carries out the contents of the request (for 
example, the paper conveyance and the imaging operation by means 
of the printer engine, the memory reservation, the file generation, 
etc.) directly. 

10 Moreover, the handler layer 38 includes the facsimile control 

unit handler (FCUH) 70 which manages the facsimile control unit 
(FCU), and the image memory handler (IMH) 71 which carries out 
the memory assignment of the process and the management of the 
memory assigned to the process. 

15 SRM 69, FCUH 70, and IMH 71 perform the processing 

request to the hardware resources 34 by using the engine interface 
82 which transmits the processing request to the hardware resources 
34 with the pre-defined functions. 

With the above-described composition of FIG. 3, the multi- 

20 function peripheral system 31 can carry out the intensive control of 
each processing commonly required by the respective applications 
on the platform 36. 

Next, a description will be given of the hardware 
configuration of the multi-function peripheral system 31 of the 

25 invention. FIG. 4 shows the hardware configuration of the multi- 
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function peripheral system 31 of FIG. 3. 

As shown in FIG. 4, the multi-function peripheral system 31 
includes the controller 100, the operation panel 120, the facsimile 
control unit (FCU) 121, and the engine unit 122. 
5 The controller 100 includes the CPU 101, the system memory 

102, the north bridge (NB) 103, the south bridge (SB) 104, the 
application-specific integrated circuit (ASIC) 106, the local memory 
(LM) 107, the hard disk drive (HDD) 108, the network interface 
controller (NIC) 109, the SD card slot 110, the USB device 111, the 

10 IEEE1394 device 112, and the Centronics interface 113. 

CPU 101 performs the control of the whole multi-function 
peripheral system 31. CPU 101 starts execution of NCS 61, DCS 62, 
OCS 63, FCS 64, ECS 65, MCS 66, UCS 67, SCS 68, SRM 69, 
FCUH 70, and IMH 71, and performs each process of the programs 

15 on the OS. Moreover, CPU 101 starts execution of the printer 

application 51, the copier application 52, the facsimile application 
53, the scanner application 54, and the network file application, 
which constitute the application layer 35, and performs each process 
of the programs on the OS. 

20 NB 103 is the bridge which is provided for interconnection of 

CPU 101, the system memory 102, SB 104, and ASIC 106. The 
system memory 102 is the memory which is used for image drawing 
of the multi-function peripheral system 31. SB 104 is the bridge 
which is provided for interconnection of NB 103, ROM (not shown), 

25 the PCI bus 114, and the peripheral devices. 
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The local memory 107 is the memory which is used as the 
image buffer for copying documents or the buffer for encoding 
images. ASIC 106 is the application-specific integrated circuit for 
image processing uses including the hardware for image processing. 
5 HDD 108 is the storage device for accumulating images, document 
data, programs, font data, forms, etc. The operation panel 120 is 
provided to display the operational messages to the operator and 
receive the input operational commands from the operator. 

NIC 109 is the interface device for connecting the MFP 3 1 to 

10 the network. The SD card slot 110 is provided to allow the insertion 
and removable of the SD card, and the SC card slot 110 transmits an 
interrupt signal, generated in response to the insertion and 
removable of the SD card, to the SD card control unit. The USB 
device 111, the IEEE1394 device 112 and the Centronics interface 

15 113 are the interface devices according to the respective interface 
specifications. 

FIG. 5 is a block diagram of an example of the multi-function- 
peripheral system (MFP) booting unit of FIG. 3. 

The multi-function-peripheral system (MFP) booting unit 33 
20 comprises the ROM monitor 130 and the program initiating unit 131. 
As described above, the MFP booting unit 33 is first activated upon 
power-up of the multi-function peripheral system 31, and starts 
execution of the application layer 35 and the platform 36 in the 
software group 32. 
25 The ROM monitor 130 which is the BIOS and boot loader is 
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activated upon power-up of the MFP 31, and performs the 
initialization of the hardware, the diagnosis of the controller 100, 
the initialization of the software, etc. 

The ROM monitor 130 expands the OS and the root file system 
5 on the system memory 102, and starts execution of the OS. The OS 
mounts the root file system. 

Moreover, the program initiating unit 131 is called from the 
OS, and secures the memory areas on the system memory 102 and 
the LM 107. 

10 The program initiating unit 131 is the process which is first 

initiated by the multi-function peripheral system 1, and mounts the 
file system according to a predetermined configuration file. 
Specifically, according to the predetermined configuration file, the 
program initiating unit 131 reads the programs of the application 

15 layer 35 and the platform 36, required for operation of the MFP 31, 
from the HDD 108, the SD card, the ROM, etc., and expands each 
read program to the memory areas which are secured on the system 
memory 102 and the LM 107, so that and the program initiating unit 
131 starts the processes of the application layer 35 and the platform 

20 36. 

Next, a description will be given of processing of the program 
initiating unit 131. 

The program initiating unit 131 reads a predetermined master 
configuration file at the time of starting, and performs mounting of 
25 the file system and starting of the processes according to the read 
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master configuration file. 

Moreover, the program initiating unit 131 performs mounting 
processing according to the description of the mounting, when the 
description of the mounting is included in the read master 
5 configuration file. 

Furthermore, when the predetermined directory which includes 
the file of a predetermined extension in the root director of the file 
system mounted when the predetermined configuration file existed in 
the root of the mounted file system exists, the program initiating 
10 unit 131 reads the predetermined configuration file or the file of the 
predetermined extension, and performs mounting processing of the 
file system. 

In addition, "gzromfs" is an example of the file system which 
can be mounted by the program initiating unit 131. This file system 
15 "gzromfs" manages the files of the ROMFS format which are "gzip" 
compression encoded. 

Next, a description will be given of the preferred embodiments 
of the invention in which the processing to add a program to a 
program-initiation SD card (which is a program-initiation recording 
20 medium) is carried out. 

The first preferred embodiment of the present invention will 
be explained. FIG. 6 is a diagram for explaining an embodiment of 
the processing to add a program to a program-initiation SD card by 
using a program-addition file. 
25 In the following, only the composition required for description 
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among the composition of the multi-function peripheral system 31 is 
shown in the diagram of FIG. 6, and the composition which is not 
required for description is omitted. 

The multi-function peripheral system 31 is provided with the 
5 SD card slot 110 in which the program-initiation SD card 141 is 

inserted. The multi-function peripheral system 31 is connected to 
the computer terminal 160 through the network 210. Moreover, the 
multi-function peripheral system 31 is connected to the server 150 
through the network 200. The multi-function peripheral system 31 
10 carries out the processing to add the program to the program- 
initiation SD card 141 or the flash ROM 142 by using the program- 
addition file. 

The server 150 is the device which creates the program- 
addition file used for adding the program to the program-initiation 

15 SD card 141. The server 150 creates the program-addition file based 
on the acquired information. The server 150 transmits the created 
program-addition file to the MFP 31 via the network 200, or to the 
computer terminal 160 via the network 210. 

The computer terminal 160 is connected to the server 150 via 

20 the network 200. Moreover, the computer terminal 160 is connected 
to the multi-function peripheral system 31 via the network 210. The 
computer terminal 160 transmits information to the server 150 via 
the network 200, and transmits the program-addition file, received 
from the server 150, to the multi-function peripheral system 31 via 

25 the network 210. 



-27- 



Referring to FIG. 7, a description will be given of the 
processing of the multi-function peripheral system 31, the server 150, 
and the computer terminal 160, which are shown in FIG. 6. 

FIG. 7 is a diagram for explaining examples of the processing 
5 of the multi-function peripheral system, the server, and the computer 
terminal. The examples of the processing of FIG. 7 are directed to 
the transmission of the program-addition file from the server 150 to 
the MFP 31 through the computer terminal 160. 

In the processing of FIG. 7 (a), the information of the 
10 application program, which is desired by the operator who operates 
the computer terminal 160 to be added to the multi-function 
peripheral system 31, is sent to the server 150 as the name of the 
requesting application program. 

The operator can transmit the information of the application to 
15 be added to the multi-function peripheral system 31, to the server 
150 by using the screen shown in FIG. 8 A to FIG. 8D displayed on 
the display device of the computer terminal 160. 

FIG. 8A to FIG. 8D show examples of the screen displayed on 
the display device of the computer terminal 160. 
20 The operator on the computer terminal 160 who desires to add 

the requesting application program to the multi-function peripheral 
system 31 starts the pre-installed application program in the 
computer terminal 160, and displays the application starting screen 
of FIG. 8A to FIG. 8C on the display device of the computer 
25 terminal 160. 
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In the screen of FIG. 8A, the user ID input item, the password 
input item, and the application selection column are included. 

In the screen of FIG. 8B, the model name input item, the 
device purchase date input item, and the application selection 
5 column are included. 

In the screen of FIG. 8C, the model ID input item and the 
application selection column are included. 

If the operator operates the computer terminal 160 and inputs 
the information to any one screen of FIG. 8A to FIG. 8C, the input 
10 information will be transmitted to the server 150 from the computer 
terminal 160. 

However, in the case of the screen of FIG. 8A, the 
identification information (for example, the model name, the model 
ID, etc.) for identifying the multi-function peripheral system 31 is 
15 not transmitted to the server 150. 

Therefore, when there are two or more model IDs 
corresponding to the requesting application program, the computer 
terminal 160 displays the screen of FIG. 8D on the display device, 
so that the operator is requested to choose the desired model ID from 
20 among them. 

Alternatively, the server 150 may display the screens of FIG. 
8A to FIG. 8D on the display device of the server, which are 
displayed on the display device of the computer terminal 160 as in 
the above-described embodiment. 
25 Referring back to FIG. 7 (a), the server 150 performs the user 
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authentication based on both the information stored in the database 
170 of FIG. 9 and the information received from the computer 
terminal 160. When the user authentication is completed normally, 
the program-addition file used for adding the program to the 
5 program-initiation SD card 141 is created. 

FIG. 9 is a block diagram of an example of the database 170 
provided in the server 150. 

As shown in FIG. 9, the information stored in the database 170 
includes the user ID, the MFP-system list, the model ID related with 

10 the multi-function peripheral system contained in the MFP-system 
list, the model name, the loaded application list, the purchase date, 
the serial ID (the SD serial ID) of the program-initiation SD card 
141 installed in the MFP system, the application name related with 
the application program contained in the application list, and the 

15 purchase date of the application program. 

In addition, the database 170 may store the newest information 
because it is cooperated with the system which receives the update 
information from one or more multi-function peripheral systems 31 
at respective intervals of a predetermined time. 

20 The server 150 receives, from the database 170, the SD serial 

ID of the program-initiation SD card 141 of the multi-function 
peripheral system 31 of concern. 

Therefore, the acquisition of the SD serial ID can be easily 
carried out by the server 150 if each SD serial ID of one or more 

25 multi-function peripheral systems 31 is stored in the database 170. 
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The server 150 creates a program-addition file, which is 
required to add the program to the program-initiation SD card 141, 
as shown in FIG. 10. 

FIG. 10 is a flowchart for explaining an example of the 
5 processing to create the program-addition file. 

As shown in FIG. 10, the server 150 at step S10 selects the 
application program, the electronic signature of the application 
program, and the configuration file based on the model ID and the 
requested application name which the server 150 received from the 
10 computer terminal 160. 

Progressing to step Sll, the server 150 creates the MD 
(message digest) of the configuration file chosen at step S10 and the 
SD serial ID acquired from the database 170. 

Progressing to step S12, the server 150 enciphers the MD 
15 created at step Sll with the private key, and creates the electronic 
signature of the configuration file. 

Progressing to step S13, the server 150 creates the program- 
addition file based on the application program, the electronic 
signature of the application program, and the configuration file, 
20 which are chosen at step S10, and based on the electronic signature 
of the configuration file created at step S12. 

Referring to FIG. 7 (b), the server 150 transmits the program- 
addition file to the computer terminal 160, the program-addition file 
including the application program, the electronic signature of the 
25 application program, the configuration file, and the electronic 
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signature of the configuration file. 

In the processing of FIG. 7 (c), the computer terminal 160 
receives from the server 150 the program-addition file, and writes 
the received program-addition file to the program-addition SD card 
5 140 inserted in the SD card slot, as shown in FIG. 11. 

FIG. 11 shows an example of the program-addition SD card in 
which the program-addition file is recorded. In the example of the 
program-addition SD card 140 in FIG. 11, "apl.cnf" indicates the 
configuration file, "apl.lic" indicates the electronic signature of the 
10 configuration file, "apl.mod" indicates the requesting application 
program, and "apl.mac" indicates the electronic signature of the 
application program. 

In the processing of FIG. 7 (d), the NCS 61 transmits the 
program-addition file to the program initiating unit 131 through the 
15 SCS 68. 

The program initiating unit 131 performs the electronic 
authentication check of the requesting application program and the 
configuration file using the authentication check library 134, in 
order to check the justification of the received program-addition file. 
20 For example, the authentication check of the application program is 
performed as in the flowchart of FIG. 12. 

FIG. 12 is a flowchart from explaining an example of the 
processing of the authentication check of the requesting application 
program. 

25 At step S20, the program initiating unit 131 acquires the 
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model ID. 

Progressing to step S21, the program initiating unit 131 
creates the MD1 (message digest) based on the model ID acquired at 
step S20 and the application program included in the program- 
5 addition file. 

Progressing to step S22, the program initiating unit 131 
creates the MD2 (message digest) by deciphering the electronic 
signature of the application, contained in the program-addition file, 
with the public key. 
10 Progressing to step S23, the program initiating unit 131 

determines whether the MD1 and the MD2 are equal to each other. 

If it is determined at step S23 that the MD1 and the MD2 are 
equal, the program initiating unit 131 at step S24 determines that the 
authentication check of the requesting application program is set to 
15 OK. 

If it is determined at step S23 that the MD1 and the MD2 are 
not equal, the program initiating unit 131 at step S25 determines that 
the authentication check of the requesting application program is set 
to NG. This is because, if the MD1 and the MD2 are not equal, the 
20 possibility that the requesting application program included in the 
program-addition file is altered is considered high. 

Moreover, the authentication check of the configuration file is 
performed by the program initiating unit 131 as in the flowchart of 
FIG. 13. 

25 FIG. 13 shows an example of the processing of the 
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authentication check of the configuration file. 

At step S30, the program initiating unit 131 acquires the 
application SD serial ID from the program-initiation SD card 141. 
Progressing to step S31, the program initiating unit 131 
5 creates the MD1 based on the SD serial ID obtained at step S30 and 
the configuration file contained in the program-addition file. 

Progressing step S32, the program initiating unit 131 creates 
the MD2 by deciphering the electronic signature of the configuration 
file, contained in the program-addition file, with the public key. 
10 Progressing step S33, the program initiating unit 131 

determines whether the MD1 and the MD2 are equal to each other. 

If it is determined at step S33 that the MD1 and the MD2 are 
equal, the program initiating unit 131 at step S34 determines that the 
authentication check of the configuration file is set to OK. 
15 If it is determined at step S33 that the MD1 and the MD2 are 

not equal, the program initiating unit 131 at step S3 5 that the 
authentication check of the configuration file is set to NG. This is 
because, if the MD1 and the MD2 are not equal, the possibility that 
the requesting application program included in the program-addition 
20 file is altered is considered high. 

After the program initiating unit 131 checks the justification 
of the program-addition file, the control of the program initiating 
unit 131 is transferred to the processing of FIG. 7 (e). 

In the processing of FIG. 7 (e), the program initiating unit 131 
25 notifies the SCS 68 that the preparation to add the program is 
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completed. 

The SCS 68 writes a part or all of the program-addition file to 
the program-initiation SD card 141 or the flash ROM 142. In the 
present embodiment, according to the description of the 
5 configuration file, the SCS 68 is requested to write the program- 
addition file to either of the program-initiation SD card 141 or the 
flash ROM 142. Alternatively, the present embodiment may be 
modified so that the addition location selection screen as shown in 
FIG. 14 is displayed on the control panel 120, and the operator is 
10 requested to choose desired one from among the addition locations. 

The addition location selection screen of FIG. 14 contains the 
character string in which the selection of the addition location is 
requested, and the selection button for choosing the desired addition 
location. 

15 When the program-initiation SD card 141 is chosen by the 

operator as the addition location, the SCS 68 is caused to write the 
requesting application program, the electronic signature of the 
application program, the configuration file, and the electronic 
signature of the configuration file to the program-initiation SD card 

20 141. 

FIG. 15 shows an example of the program-initiation SD card 
in which the program is added. 

In the example of FIG. 15, "apl.cnf" under the directory 
"init.d" indicates the configuration file, and "apl.lic" indicates the 
25 electronic signature file which is used for the authentication check 
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of the configuration file. Moreover, "apl.mod" under the directory 
"module" indicates the requesting application program, and 
"apl.mac" indicates the electronic signature of the application 
program. 

5 On the other hand, when the flash ROM 142 is chosen by the 

operator as the addition location, the SCS 68 is caused to write the 
requesting application program and the configuration file to the 
flash ROM 142. In starting of the program from the flash ROM 142, 
the electronic signature check is not performed. Hence, the writing 

10 of the electronic signature of the application program and the 

electronic signature of the configuration file to the flash ROM 142 is 
omitted in this case. 

In the above examples of the processing of FIG. 7, the 
program-addition file is transmitted from the server 150 to the MFP 

15 31 through the computer terminal 160. Alternatively, the program- 
addition file may be transmitted from the server 150 directly to the 
MFP 31 without using the computer terminal 160. 

In such alternative embodiment, the processing of FIG. 7 (a) is 
carried out so that the operator who operates the MFP 31 or the 

20 server 150 inputs or transmits the information of the desired 

application program to be added to the MFP 31, to the server 150 as 
the name of the requesting application program. The operator can 
input or transmit the information of the application program to be 
added to the MFP 31, to the server 150 by using the screen shown in 

25 FIG. 8A to FIG. 8D displayed on the display device of the server 
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150 or the operation panel 120 of the MFP 31. 

Moreover, in such alternative embodiment, the processing of 
FIG. 7 (b) or FIG. 7 (c) is carried out so that the server 150 
transmits the program-addition file to the NCS 61 of the MFP 31 via 
5 the network 200, and the program-addition file including at least the 
application program, the electronic signature of the application 
program, the configuration file, and the electronic signature of the 
configuration file. 

In any case, according to the processing of FIG. 7, the 
10 requesting application program, the electronic signature of the 
application program, the configuration file, and the electronic 
signature of the configuration file are downloaded via the network, 
and the program-initiation SD card 141 of FIG. 15 can be created 
easily. 

15 In the case in which the program is started using the program- 

initiation SD card 141 of FIG. 15, the authentication checks of the 
application program and the configuration file are performed 
according to the processing of FIG. 12 and FIG. 13, and only the 
program whose justification has been confirmed, among those 

20 currently recorded in the program-initiation SD card 141, can be 
started safely. 

In the above-described embodiments, the description is 
focused on the processing of the multi-function peripheral system 31, 
and the same is easily applicable to the information processing 
25 apparatus 1 shown in FIG. 1 and FIG. 2. 



-37- 



The present invention is not limited to the above-described 
embodiments, and variations and modifications may be made without 
departing from the scope of the present invention. 
EFFECTS OF THE INVENTION 
5 According to the present invention, the program-addition file 

is created in response to the medium identification information so 
that starting of the program on the information processing apparatus 
is allowed by the program-addition file with the program stored in 
the program-initiation recording medium. Starting of the program 
10 on the information processing apparatus is not allowed with a 

program stored in a different program-initiation recording medium. 
Therefore, it is possible to prevent the illegal use of a program 
added to the program-initiation recording medium and establish the 
security of the program added thereto. 
15 BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a block diagram of an embodiment of the information 
processing apparatus of the invention. 

FIG. 2 is a block diagram of a hardware composition of the 
information processing apparatus of FIG. 1. 
20 FIG. 3 is a block diagram of an embodiment of the multi- 

function peripheral system of the invention. 

FIG. 4 is a block diagram of a hardware composition of the 
multi-function peripheral system of FIG. 3. 

FIG. 5 is a block diagram of an embodiment of a MFP booting 
25 unit in the multi-function peripheral system of FIG. 3. 
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FIG. 6 is a diagram for explaining the processing to add a 
program to a program-initiation SD card by using a program- 
addition file. 

FIG. 7 is a diagram for explaining examples of processing of 
5 the multi-function peripheral system, the server, and the computer 
terminal. 

FIG. 8A, FIG. 8B, FIG. 8C and FIG. 8D are diagrams of 
examples of the screen displayed on the display device of the 
computer terminal. 
10 FIG. 9 is a block diagram of an example of the database 

provided in the server. 

FIG. 10 is a flowchart for explaining an example of the 
processing to create a program-addition file. 

FIG. 11 is a diagram of an example of the program-addition 
15 file recorded in the program-addition SD card. 

FIG. 12 is a flowchart for explaining an example of processing 
of the authentication check of the requested application program. 

FIG. 13 is a flowchart for explaining an example of processing 
of the authentication check of the configuration file. 
20 FIG. 14 is a diagram of an example of the program-addition 

location selection screen. 

FIG. 15 is a diagram of an example of the program-initiation 
SD card to which the program is added. 
DESCRIPTION OF THE REFERENCE NUMERALS 
25 1 information processing apparatus 
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2, 32 software group 

3 boot unit 

4 hardware resources 

11, 133 SD card control unit 
5 12 program addition unit 
27, 110 SD card slot 
31 MFP 

33 MFP booting unit 

34 hardware resources 
10 61 NCS 

63 OCS 
65 ECS 
68 SCS 

120 operation panel 
15 131 program initiating unit 
132, 134 check library 

140 application addition SD card 

141 application initiation SD card 

142 flash ROM 
20 150 server 

160 computer terminal 
170 database 
200 network 



-40- 



ABSTRACT 

OBJECT 

To provide a program addition method and system which 
creates a program-addition file on a recording medium in response to 
identification information of a program-initiation recording medium, 
in order to prevent the illegal use of a program added to the 
program-initiation recording medium and establish the security of 
the program added thereto. 
CONSTITUTION 

In a program addition method for a system including a server 
150, a computer terminal 160, and an information processing 
apparatus 31, a program-addition file created by the server 150 is 
transmitted to the computer terminal 160, the program-addition file 
is stored in a recording medium 140 by the computer terminal 160, 
and the program is added to a program-initiation recording medium 
141 by the information processing apparatus 31 using the program- 
addition file stored in the recording medium 140. 
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